That is not something csf detects.

This could happen if SELinux is disabled on the server. If so, then there shouldn't be any issues.

If it's possible, we'd like to check your CentOS v7 install as it was developed on that platform, so should work. If so, please log a ticket on our helpdesk:
https://support.configserver.com

We've also integrated our exploit scanner into the CyberPanel UI:
https://www.configserver.com/cp/cxs.html

We're unable to replicate this, apart from the IP you have listed in your logs is a localhost one 127.0.0.95, which csf will not block. If that is changed to an public IP address the log file regex triggers as expected. You are most likely seeing a local IP if you have WHM > Tweak Settings > Service...

Make sure you are running the latest CL v7.7 kernel as they released a kernel that broke a few things including iptables a short while back.

I've found a way to do it within django/python without needing the csf UI by using an iframe in a template and a perl interface script to the csf UI perl module. This is done by utilising ProcessUtilities.outputExecutioner and a temp file for passing POST and GET data. This is a technique we've used...

Thank you for that. I had decided to using the native UI as I've been finding the plugin functionally unreliable and twice ended up with corrupt cyberpanel installs. I've found a way to use the complete ConfigServer csf UI as found on other control panels, so it would be a complete replacement, thou...

This is a known issue in CentOS v8:
https://forum.configserver.com/viewtopi ... =6&t=11533

It's a known issue:
https://forum.configserver.com/viewtopi ... =6&t=11519